The U.S. Department of Health and Human Services (HHS) publicly posted the July through December COVID-19 Testing Plans from all states, territories, and localities on HHS.gov.
New research finds nearly half of organizations regularly and knowingly ship vulnerable code despite using application security tools. Among the top reasons cited for pushing vulnerable code were pressure to meet release deadlines (54 percent) and finding vulnerabilities too late in the software development lifecycle (45 percent), according to the Veracode and Enterprise Strategy Group (ESG) research.
Congressman Andy Barr (KY-06) introduced the NIST COVID-19 Cyber-Security Act, which instructs the Director of the National Institute of Standards and Technology (NIST) to produce standards for mitigating and protecting against cyberattacks to American universities researching COVID-19.
SANS Institute, a provider of cybersecurity training and certification services, lost approximately 28,000 items of personally identifiable information (PII) in a data breach that occurred after a single staff member fell victim to a phishing attack.
U.S. Customs and Border Protection (CBP) announced the appointment of Gregory Alvarez as Director of San Juan Field Operations, which covers ports of entry in Puerto Rico and the US Virgin Islands.
The Regional Transportation District would cancel its contact with Allied Universal Security and hire outreach workers under a proposed resolution that cites concern about security officers' run-ins with several disadvantaged groups.
The U.S. Department of State’s Rewards for Justice (RFJ) program is offering a reward of up to $10 million for information leading to the identification or location of any person who works with or for a foreign government for the purpose of interfering with U.S. elections through certain illegal cyber activities.